Governance Risk and Compliance (GRC) Risk Register Analyst

Posted Today by SystemDomain, Inc.

Apply

Negotiable

Undetermined

Remote

Remote or Austin, Texas

Apply

Cyber Security Enterprise Risk Management (ERM) Governance Risk Management And Compliance Management Management Process Prioritisation Risk Governance Risk Management Risk Register Stakeholder Engagement Stakeholder Management Taxonomy Verification And Validation Workflows

Summary: The Governance, Risk & Compliance (GRC) Risk Register Analyst is responsible for designing, implementing, and operationalizing enterprise risk management processes. This role emphasizes building risk governance frameworks, developing risk scoring methodologies, and fostering sustainable risk management practices across the organization. The position is fully remote and requires collaboration with various teams to enhance risk management strategies. The ideal candidate will have extensive experience in GRC and risk management.

Key Responsibilities:

Define end-to-end risk governance workflows including intake, validation, mitigation, and monitoring
Establish roles, responsibilities, and decision-making structures for risk management
Design escalation and reporting processes for high-risk scenarios
Collaborate with business, technology, and security teams
Facilitate workshops and working sessions to drive adoption of risk practices
Support organization-wide implementation of risk register processes
Develop standardized risk register structure, taxonomy, and documentation
Support onboarding and documentation of enterprise risks
Align risk processes with overall cybersecurity and risk posture
Create audit-ready documentation for frameworks, scoring models, and workflows
Document governance structures, decision authorities, and operational procedures
Provide knowledge transfer and training to internal teams

Key Skills:

8+ years of experience in GRC, risk management, or information security
Strong experience in risk register design and framework development
Expertise in risk scoring, prioritization models, and governance workflows
Proven stakeholder engagement and facilitation experience
Strong documentation and knowledge transfer skills

Salary (Rate): undetermined

City: undetermined

Country: undetermined

Working Arrangements: remote

IR35 Status: undetermined

Seniority Level: undetermined

Industry: Other

Detailed Description From Employer:

Job Title: Governance, Risk & Compliance (GRC) Risk Register Analyst

Location: 100% Remote (U.S. Only)

Job Description:

We are seeking an experienced GRC Risk Register Analyst to design, implement, and operationalize enterprise risk management processes. This role will focus on building risk governance frameworks, developing risk scoring methodologies, and enabling sustainable risk management practices across enterprise environments.

Key Responsibilities:

Risk Framework & Governance

Define end-to-end risk governance workflows including intake, validation, mitigation, and monitoring
Establish roles, responsibilities, and decision-making structures for risk management
Design escalation and reporting processes for high-risk scenarios

Stakeholder Engagement

Collaborate with business, technology, and security teams
Facilitate workshops and working sessions to drive adoption of risk practices
Support organization-wide implementation of risk register processes

Risk Register Development

Develop standardized risk register structure, taxonomy, and documentation
Support onboarding and documentation of enterprise risks
Align risk processes with overall cybersecurity and risk posture

Documentation & Knowledge Transfer

Create audit-ready documentation for frameworks, scoring models, and workflows
Document governance structures, decision authorities, and operational procedures
Provide knowledge transfer and training to internal teams

Deliverables:

Enterprise Risk Register Framework
Risk Scoring & Prioritization Model
Risk Governance Model (workflows, roles, escalation paths)
Initial Risk Register Population
Final Documentation Package with operational guidance

Required Qualifications:

8+ years of experience in GRC, risk management, or information security
Strong experience in risk register design and framework development
Expertise in risk scoring, prioritization models, and governance workflows
Proven stakeholder engagement and facilitation experience
Strong documentation and knowledge transfer skills

Apply

Inside IR35

Outside IR35

Permanent Employee

IR35

Umbrella Companies

Limited Companies

First Time Contractors

What Is IR35?

InsideIR35

Outside IR35

The Cost of IR35

IR35 Assessments

IR35 Rules

IR35 Compliance

Expenses

Foreign Companies

Overseas Contractors

Limited Companies

Sole Traders

What Is An Umbrella Company?

Choosing an Umbrella Company

Tax and Pay

Tax Avoidance

Fees (Margin)

National Insurance

Holiday Pay

Expenses

Pensions

Maternity Pay

Sick Pay

What Is A Limited Company?

Limited Company vs Sole Trader

Incorporation

Taxes

Filing Responsibilities

Bookkeeping

Insurance

Expenses

Buying a Car or Van

Capital Allowances

Benefits In Kind

Pensions

Employing A Spouse

Managing Excess Money

Dormant Companies

Closing Your Company

Withdrawing Money

Business Asset Disposal Relief

How To Become A Contractor

Inside IR35 Checklist

Outside IR35 Checklist

Self-Assessment Tax Returns

Mortgages

Pensions

Working Multiple Contracts

What is the £100k Abatement?

Inside IR35

Outside IR35

Permanent Employee

IR35

Umbrella Companies

Limited Companies

First Time Contractors

What Is IR35?

InsideIR35

Outside IR35

The Cost of IR35

IR35 Assessments

IR35 Rules

IR35 Compliance

Expenses

Foreign Companies

Overseas Contractors

Limited Companies

Sole Traders

What Is An Umbrella Company?

Choosing an Umbrella Company

Tax and Pay

Tax Avoidance

Fees (Margin)